Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
File: Mh6FAflfcDdNRXa5sM1VW68fNas.mft (raw, json)
Hash identifier: 3SpcNHQiLb0aWKTKqgZuxf9geC2AjXrfDUdyYt7kgSQ=
Subject key identifier: EF:F8:DB:79:0B:B6:65:FB:FA:BE:51:DC:CE:92:2F:B7:75:D4:BC:FF
Authority key identifier: 32:1E:85:01:F9:5F:70:37:4D:45:76:B9:B0:CD:55:5B:AF:1F:35:AB
Certificate issuer: /CN=321e8501f95f70374d4576b9b0cd555baf1f35ab
Certificate serial: 019853E8EC0A6F154CDD1CE3F879EE3B7BDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
Manifest number: 1604
Signing time: Tue 29 Jul 2025 02:00:30 +0000
Manifest this update: Tue 29 Jul 2025 02:00:30 +0000
Manifest next update: Wed 30 Jul 2025 02:00:30 +0000
Files and hashes: 1: Mh6FAflfcDdNRXa5sM1VW68fNas.crl (hash: 5qQ3Nuu4XgNgPcMwpv+N7+z4szVvklq3Ph3kqEk5tww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:e8:ec:0a:6f:15:4c:dd:1c:e3:f8:79:ee:3b:7b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=321e8501f95f70374d4576b9b0cd555baf1f35ab
Validity
Not Before: Jul 29 02:00:30 2025 GMT
Not After : Jul 30 02:00:30 2025 GMT
Subject: CN=eff8db790bb665fbfabe51dcce922fb775d4bcff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e0:2f:41:35:a7:ce:7b:e6:6f:d9:5a:c0:e3:
27:ba:a7:2f:8e:a0:c4:ac:74:38:c4:8e:f0:76:bb:
88:3c:d1:e7:8f:72:72:23:fc:10:59:8e:57:d3:a4:
45:5f:7f:f7:99:cf:10:82:7e:cd:92:d3:92:cc:98:
0e:16:50:2b:9d:61:95:64:77:27:c4:d5:39:72:ee:
45:23:7b:7f:35:2a:2d:ee:38:d9:51:ec:50:95:29:
5b:2f:db:e8:b9:1f:4b:f9:75:fb:7c:c4:8e:b6:31:
a7:ab:0c:60:bb:e6:c2:89:17:46:1e:32:ed:0e:d6:
0d:6f:f0:d2:19:68:76:7a:41:17:2a:08:bd:24:a3:
7b:3f:b4:81:05:7b:10:55:6e:2b:a9:b7:cc:63:ed:
10:73:9e:d1:99:f2:c7:60:d9:3c:56:6b:12:02:3e:
97:c1:be:9e:e7:d7:69:c2:24:ae:80:3a:60:4c:59:
09:2e:41:ae:86:b7:c8:bc:17:94:54:c8:a6:8f:1b:
a4:e9:53:ac:7f:29:e3:cc:8c:24:e6:6c:97:2a:d6:
b1:07:39:42:2e:f0:bb:b4:80:fe:cb:ce:d9:d6:9c:
df:c8:19:ef:12:ae:53:35:f0:47:db:00:45:7b:a6:
69:a5:fa:ff:dd:3d:c6:ad:7b:e8:f1:8b:21:a6:f1:
34:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F8:DB:79:0B:B6:65:FB:FA:BE:51:DC:CE:92:2F:B7:75:D4:BC:FF
X509v3 Authority Key Identifier:
keyid:32:1E:85:01:F9:5F:70:37:4D:45:76:B9:B0:CD:55:5B:AF:1F:35:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:b0:2d:ce:5b:8d:d1:0e:93:d3:e9:e0:7d:45:9a:09:23:4c:
7d:5d:55:68:0f:88:0b:7d:72:98:2f:f6:19:f0:df:0b:f2:f5:
7a:0a:83:3d:2f:2a:43:4e:9a:bc:5e:a8:be:f4:6c:84:ec:04:
5f:5b:f4:3d:65:f7:78:e1:9b:da:ca:39:63:c5:a8:8c:ca:d8:
0d:e5:cb:00:86:d8:61:91:2a:61:e4:89:b2:c6:ba:61:b0:59:
64:44:7c:a4:d0:fb:24:cf:a9:e3:6c:c3:1a:d7:7d:fb:11:15:
c2:87:56:92:d4:c0:bd:7c:92:a2:cf:99:8e:f7:6c:28:00:e0:
77:c5:c1:fc:cd:fd:e6:9e:f2:76:cb:94:53:a6:ff:a1:91:ea:
02:b4:69:ec:85:94:7b:8e:f5:f2:c7:da:9e:f0:51:81:87:eb:
89:9a:5c:77:20:0a:c6:f9:67:7c:f1:ee:56:d1:99:dd:c1:b6:
d2:de:dd:00:a0:2c:0c:07:f0:00:66:98:78:60:57:ea:73:a6:
29:1f:38:6d:f4:be:5b:5d:af:d0:79:ba:fa:6e:25:c4:4b:b2:
c0:37:37:e4:67:05:b9:24:75:21:d2:09:db:67:b9:f4:97:b4:
5d:17:d0:65:74:5c:b6:9d:4e:64:25:24:02:9e:2c:38:a3:1b:
87:24:db:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 07:46:54 2025 by rpki-client